Revealed: An exciting partnership to elevate agile learning and developer-driven security in the enterprise
Revealed: An exciting partnership to elevate agile learning and developer-driven security in the enterprise
Fresh off the back of our Series C funding announcement, I am thrilled to announce another step in our company’s journey. Security industry leader, Synopsys, has welcomed an exciting new addition to its product suite: Synopsys Developer Security Training, powered by Secure Code Warrior. You can read the full press release here.
This expansion of their industry-leading portfolio of application security solutions signifies a positive step in the right direction for enterprise security programs, enabling them to embrace best-practice DevSecOps methodologies - especially those relating to the shared responsibility for security. Put simply, this integration will grow the global base of security-skilled developers, and this is a wonderful opportunity for every organization to support code-level vulnerability reduction through developer enablement in secure coding.
Global governments are placing increasing scrutiny on software vendors in the wake of some of the worst cyberattacks on record, with CISA in the United States releasing their Security-by-Design and -Default Guidelines this year, in which they recommend that the ultimate responsibility for cybersecurity outcomes is placed on the vendor rather than end-user. For many software vendors, this will require a significant overhaul of their internal security practices, or they run the risk of hefty fines. This will quickly become a non-negotiable across the globe, and any excuses relating to a cybersecurity skills shortage won’t fly: we need security-aware developers to play their vital role in safer software creation, and we need them now.
Flexible, customizable agile learning solutions are a powerful antidote to poor coding patterns, in addition to the negative experience many developers have had with AppSec initiatives to date. They need to be won over, accommodated, and given learning pathways that fit in with their workflow to deliver the right information at the right time. Synopsys’ integration with our platform is a viable, market-leading solution to this problem, and can fundamentally change the developer relationship with security for the better.
Cybercrime is set to cost companies globally an estimated $10.5 trillion annually by 2025, a consistent rise from $3 trillion in 2015. Cybersecurity Ventures also reports that cybercrime represents the “greatest transfer of economic wealth in history”. This is not a drill; we as a collective industry must start prioritizing secure coding education for every individual writing code, and set a new benchmark for security as a measure of software quality. With Synopsys’ comprehensive suite of tools now including engaging, hyper-relevant hands-on agile learning for developers, there has never been a better time to make a meaningful switch to developer-driven, preventive security programs.
Pieter Danhieux
Pieter Danhieux is a globally recognized security expert, with over 12 years experience as a security consultant and 8 years as a Principal Instructor for SANS teaching offensive techniques on how to target and assess organizations, systems and individuals for security weaknesses. In 2016, he was recognized as one of the Coolest Tech people in Australia (Business Insider), awarded Cyber Security Professional of the Year (AISA - Australian Information Security Association) and holds GSE, CISSP, GCIH, GCFA, GSEC, GPEN, GWAPT, GCIA certifications.
Related Articles We Recommend
Related Articles We Recommend
Dive into onto our latest secure coding insights on the blog.
Our extensive resource library aims to empower the human approach to secure coding upskilling.
Get the latest research on developer-driven security
Our extensive resource library is full of helpful resources from whitepapers to webinars to get you started with developer-driven secure coding. Explore it now.
Revealed: An exciting partnership to elevate agile learning and developer-driven security in the enterprise
Fresh off the back of our Series C funding announcement, I am thrilled to announce another step in our company’s journey. Security industry leader, Synopsys, has welcomed an exciting new addition to its product suite: Synopsys Developer Security Training, powered by Secure Code Warrior. You can read the full press release here.
This expansion of their industry-leading portfolio of application security solutions signifies a positive step in the right direction for enterprise security programs, enabling them to embrace best-practice DevSecOps methodologies - especially those relating to the shared responsibility for security. Put simply, this integration will grow the global base of security-skilled developers, and this is a wonderful opportunity for every organization to support code-level vulnerability reduction through developer enablement in secure coding.
Global governments are placing increasing scrutiny on software vendors in the wake of some of the worst cyberattacks on record, with CISA in the United States releasing their Security-by-Design and -Default Guidelines this year, in which they recommend that the ultimate responsibility for cybersecurity outcomes is placed on the vendor rather than end-user. For many software vendors, this will require a significant overhaul of their internal security practices, or they run the risk of hefty fines. This will quickly become a non-negotiable across the globe, and any excuses relating to a cybersecurity skills shortage won’t fly: we need security-aware developers to play their vital role in safer software creation, and we need them now.
Flexible, customizable agile learning solutions are a powerful antidote to poor coding patterns, in addition to the negative experience many developers have had with AppSec initiatives to date. They need to be won over, accommodated, and given learning pathways that fit in with their workflow to deliver the right information at the right time. Synopsys’ integration with our platform is a viable, market-leading solution to this problem, and can fundamentally change the developer relationship with security for the better.
Cybercrime is set to cost companies globally an estimated $10.5 trillion annually by 2025, a consistent rise from $3 trillion in 2015. Cybersecurity Ventures also reports that cybercrime represents the “greatest transfer of economic wealth in history”. This is not a drill; we as a collective industry must start prioritizing secure coding education for every individual writing code, and set a new benchmark for security as a measure of software quality. With Synopsys’ comprehensive suite of tools now including engaging, hyper-relevant hands-on agile learning for developers, there has never been a better time to make a meaningful switch to developer-driven, preventive security programs.
